As far as I know freeradius uses openssl to handle crls.
openssl also has an option -use_deltas to enable support for delta CRLs.
Is this option available in freeradius?
According to eap.conf it is necessary to restart radiusd if a new version of a
crl is published.
Are there plans to enable
Hi,
Are there plans to enable reading of a new crl without restarting the
server?
without severaly crippling performance, how?
the RADIUS server would have to poll the CRL file all the timeand if
it read a new file it would have to destroy its current array structure to
import the
On 26 Jul 2012, at 09:20, alan buxey wrote:
Hi,
Are there plans to enable reading of a new crl without restarting the
server?
without severaly crippling performance, how?
You could add caching to the OSCP module and use that?
-
List info/subscribe/unsubscribe? See
Wegener, Norbert wrote:
Are there plans to enable reading of a new crl without restarting the
server?
I'd suggest OCSP.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
4 matches
Mail list logo